cbcvebase.
CVE-2010-1239
published 2010-04-05

CVE-2010-1239: Foxit Reader before 3.2.1.0401 allows remote attackers to (1) execute arbitrary local programs via a certain "/Type /Action /S /Launch" sequence, and (2)…

PriorityP352critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
7.53%
93.7th percentile
Foxit Reader before 3.2.1.0401 allows remote attackers to (1) execute arbitrary local programs via a certain "/Type /Action /S /Launch" sequence, and (2) execute arbitrary programs embedded in a PDF document via an unspecified "/Launch /Action" sequence, a related issue to CVE-2009-0836.

Affected

7 ranges
VendorProductVersion rangeFixed in
foxitsoftwarefoxit_reader<= 3.2.0.0303
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.